Lucene search

K
redosRedosROS-20231013-03
HistoryOct 13, 2023 - 12:00 a.m.

ROS-20231013-03

2023-10-1300:00:00
redos.red-soft.ru
9
vulnerability
xmlunlinknode
libxml2
denial of service
unix

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

18.8%

A vulnerability in the xmlUnlinkNode function in the tree.c file of the libxml2 library is related to a failure of a specific
allocated memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a
denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64libxml2< 2.9.8-14UNKNOWN

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

Low

EPSS

0.001

Percentile

18.8%